20.5k unique visitors in the last 3 days

TMF Drafts Guidance on Security Design for IT

The TM Forum's Open Digital Architecture (ODA) project has written advice on how to assess risk whilst designing security and privacy into IT systems.

New IT system design guidelines have been written by the TM Forum’s Open Digital Architecture (ODA) project in order to help service providers manage their security and privacy risks. Dave Milham, Chief Architect of the TM Forum, wrote that:

They cover a full enterprise lifecycle vision for security and governance, and offer a detailed set of methods for enterprise risk assessment which are suitable for DevSecOps automation.

The IG1186 ODA Governance and Security Vision guidance takes and applies best practice from other organizations, including the TOGAF Standard from the Open Group. The purpose is to show how to deliver security and privacy by design through a well-defined ODA lifecycle methodology.

The IG1187 ODA Enterprise Risk Assessment guidance offers introductory advice on how to gauge the risk appetite, risk tolerance, and asset exposure of an enterprise. It may be used by either service providers or vendors as part of the way they design and implement effective governance and security processes.

These documents are the product of a workshop which was hosted by Oracle and supported by Vodafone and Huawei. They may be downloaded by members of the TM Forum.

Eric Priezkalns
Eric Priezkalnshttp://revenueprotect.com

During his career, Eric has been a Director of Risk Management for a national telco, the Chief Executive of the Risk & Assurance Group, a Chief Marketing Officer for a software business, a consultant, a public speaker and the publisher of Commsrisk since its launch in 2006. Look here for more about the history of Commsrisk and the role played by Eric.

The comms providers that Eric has worked for include Qatar Telecom, Cable & Wireless, T‑Mobile, Sky and Worldcom. In addition to his proficiency at speaking about the current scamdemic, Eric is also a qualified chartered accountant and a subject matter expert in consumer protection, enterprise risk management, fraud prevention, data integrity and billing accuracy. Eric was the lead author of Revenue Assurance: Expert Opinions for Communications Providers, published by CRC Press. He can be reached through the contact form on this website.

Related Articles

The Commsrisk Global Fraud Dashboard


Our Global Fraud Dashboard uses AI-powered search to collate, update and visualize data about scams and other network abuses from around the world. New charts are added each month. See it here.

Get Our Weekly Newsletter by Email